fwminex: +secrets

This commit is contained in:
Motiejus Jakštys 2024-07-23 22:01:40 +03:00
parent 08a88f0d0a
commit 54636d230c
2 changed files with 17 additions and 17 deletions

View File

@ -195,16 +195,16 @@
home-manager.nixosModules.home-manager
nixos-hardware.nixosModules.framework-12th-gen-intel
#agenix.nixosModules.default
#{
# age.secrets = {
# motiejus-passwd-hash.file = ./secrets/motiejus_passwd_hash.age;
# root-passwd-hash.file = ./secrets/root_passwd_hash.age;
# sasl-passwd.file = ./secrets/postfix_sasl_passwd.age;
# syncthing-key.file = ./secrets/fwminex/syncthing/key.pem.age;
# syncthing-cert.file = ./secrets/fwminex/syncthing/cert.pem.age;
# };
#}
agenix.nixosModules.default
{
age.secrets = {
motiejus-passwd-hash.file = ./secrets/motiejus_passwd_hash.age;
root-passwd-hash.file = ./secrets/root_passwd_hash.age;
sasl-passwd.file = ./secrets/postfix_sasl_passwd.age;
#syncthing-key.file = ./secrets/fwminex/syncthing/key.pem.age;
#syncthing-cert.file = ./secrets/fwminex/syncthing/cert.pem.age;
};
}
];
specialArgs = {inherit myData;} // inputs;

View File

@ -1,6 +1,7 @@
{
myData,
pkgs,
config,
...
}: let
nvme = "/dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6P1NS0TA01331A_1";
@ -68,9 +69,8 @@ in {
base.users = {
enable = true;
user.initialPassword = "live";
#root.hashedPasswordFile = config.age.secrets.root-work-passwd-hash.path;
#user.hashedPasswordFile = config.age.secrets.motiejus-work-passwd-hash.path;
root.hashedPasswordFile = config.age.secrets.root-passwd-hash.path;
user.hashedPasswordFile = config.age.secrets.motiejus-passwd-hash.path;
};
services = {
@ -104,10 +104,10 @@ in {
};
};
#postfix = {
# enable = true;
# saslPasswdPath = config.age.secrets.sasl-passwd.path;
#};
postfix = {
enable = true;
saslPasswdPath = config.age.secrets.sasl-passwd.path;
};
};
};